HIPPA Compliance
Our security policy minimizes the risk of unauthorized information access, helps to prevent internal and external breaches and ensure compliance with HIPPA regulatory standards. Our software and network design incorporates built‐in security features. On top of that we employ the industry’s leading security hardware and software including Intrusion Prevention Systems, Host‐based Security Software and Vulnerability Scanners.

The HIPAA Privacy Rule provides federal protections for Personal Health Information (PHI) held by covered entities, and gives patients an array of rights with respect to that information. In addition, the Privacy Rule is balanced so that it permits the disclosure of PHI needed for patient care and other important purposes. The HIPAA Security Rule specifies a series of administrative, physical, and technical safeguards for covered entities to use to assure the confidentiality, integrity, and availability of electronic Protected Health Information (ePHI). The HITECH Act, which is an addition to the overall HIPAA mandates, holds business associates responsible for being compliant with the HIPAA Privacy Rule and Security Rule. The HITECH Act also mandates the Business Associate’s responsibility for holding the covered entity to the Business Associate contract and the HIPAA Privacy Rule and Security Rule. If the Business Associate becomes aware of any non-compliance by the Covered Entity, the business associate must fix the breach, terminate the Business Associate contract, and/or report the non-compliance to the Department of Health and Human Services (HHS). In order to fulfill HIPAA regulations, Business Associates have to comply with the HIPAA Privacy Rule and Security Rule effective Feb 17, 2012. Star Billing Solutions Covered Entity under HIPAA, providing Business Associate services

Covered Entities: Persons or organizations subject to the Privacy Rule. If you will be sending PHI (ePHI) to any outside entity for any services, like a billing service or clearinghouse, you are categorized as the Covered Entity. Star Billing Solutions is Covered Entity under HIPAA, providing Business Associate services. Business Associate: Persons or organizations who will be receiving Protected Health Information (PHI or ePHI) from the Covered Entity to provide a service for the Covered Entity. This could be a billing service or clearinghouse, in which you send insurance claims to be further disbursed to multiple payers/health plans. Star Billing Solutions is Covered Entity under HIPAA, providing Business Associate services

The Business Associate Agreement (BAA) is Star Billing Solutions contract between the Covered Entity and the Business Associate to ensure the protection of privacy and security of the PHI (ePHI) the User sends to Star Billing Solutions. The HIPAA Privacy and Security Rule require a contract of this kind. The user (Covered Entity) must have a fully executed Star Billing Solutions Business Associate Agreement (BAA) on file with Star Billing Solutions in order to utilize Star Billing Solutions services.

What is the scope of HIPAA?

HIPAA affects the privacy and security of protected health information.

Why do you need to know about HIPAA?

* HIPAA is federal law. It requires all health personnel to be educated about HIPAA policies and procedures. It includes anyone who does or might have access to any patient information.

* HIPAA laws exist to protect the privacy of anyone receiving any kind of medical care or assistance. These laws are strict and if all members of your practice are unaware of their restrictions, it can result in consequences such as fines or even criminal charges

* HIPAA is designed to improve the efficiency and effectiveness of the healthcare system by standardizing the electronic data for specified administrative and financial transactions, while protecting the security and confidentiality of that information.

* Secure your sensitive patient data with Auto Log Off. Auto Log Off limits unauthorized access to patient and provider information by automatically logging off any user that has been idle.

We can help you establish HIPAA Compliance:

• Disaster Recovery Plan

• Off Site Data Backup

• Annual HIPAA Training

• Create Employee and Patient Forms

• Establish Employee Computer Policy

• Employee Computer Monitoring Software

• HIPAA training is provided to all employees